ET COMPROMISED Known Compromised or Hostile Host Traffic group 5

SID: 2500008Rev: 763525 viewsHistory

Sourceet/open

CreatedApril 28, 2011

UpdatedMay 26, 2026

Classificationmisc-attack

alert ip [165.154.224.129,165.154.52.159,165.22.28.112,165.231.215.31,167.172.64.25,168.222.140.218,170.150.255.26,171.231.176.146,171.231.182.74,171.231.186.56,171.231.191.213,171.231.194.157,171.231.195.165,171.231.197.57,171.231.198.137,171.231.198.152,171.231.198.171,171.231.199.189,171.243.148.18,171.243.149.139,171.243.149.209,171.243.149.254,171.243.150.172,171.243.150.236,176.65.139.121,176.65.139.213,178.104.220.57,178.128.121.17,178.175.167.17,178.17.53.215] any -> $HOME_NET any (msg:"ET COMPROMISED Known Compromised or Hostile Host Traffic group 5"; reference:url,danger.rulez.sk/projects/bruteforceblocker/blist.php; threshold:type limit, track by_src, seconds 60, count 1; classtype:misc-attack; sid:2500008; rev:7635; metadata:affected_product Any, attack_target Any, deployment Perimeter, tag COMPROMISED, signature_severity Major, created_at 2011_04_28, updated_at 2026_05_26;)

References

url	danger.rulez.sk/projects/bruteforceblocker/blist.php

Metadata

affected productAny

attack targetAny

deploymentPerimeter

tagCOMPROMISED

signature severityMajor

created at2011_04_28

updated at2026_05_26

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!